IDS 2000-0007 

What Is Claimed Is: 



1 1 . A method of distributing revocation state information, the method 

2 comprising: 

3 receiving first update scheduling information from a first party; and 

4 sending digital certificate revocation state information to the first 

5 party according to a schedule that is based on the first update scheduling 

6 information. 



1 2. The method of claim 1 , wherein the method further comprises: 

a 

2 receiving second update scheduling information from a second 

3 party; and 

hi 

g 4 sending digital certificate revocation state information to the 

5 second party according to a schedule that is based on the second 

1=^ 6 update scheduling information. 

Ill 

ill 

S""^ 1 3. The method of claim 2, wherein the digital certificate revocation state 

2 information is sent to the first party on a different schedule than the 

3 digital certificate revocation state information is sent to the second party. 



1 4. The method of claim 2, wherein the schedule provides that the digital 

2 certificate revocation state information is sent to the first party at an 

3 interval that is less than every 30 seconds. 
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1 5. The method of claim 2, wherein the schedule provides that the digital 

2 certificate revocation state information is sent to the first party at an 

3 interval that is less than every 5 seconds. 



1 6. The method of claim 1 , wherein the method further includes receiving 

2 new update scheduling information from the first party, and wherein 

3 when the new update scheduling information is received the digital 

4 certificate revocation state information is sent to the first party according 

5 to a schedule that is based on the new update scheduling information. 



1 7. The method of claim 1 , wherein the digital certificate revocation state 
W 2 information sent includes a certificate revocation list. 



1 8. The method of claim 1 , wherein the digital certificate revocation state 

2 information includes information identifying revoked certificates. 



n 



1 9. The method of claim 1 , wherein the digital certificate revocation state 

2 information sent includes delta-certificate revocation list information. 



1 10. The method of claim 1 , wherein sending digital certificate revocation 

2 state information includes sending information using multicasting. 
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11. A method of distributing revocation state information, the method 
comprising: 

receiving update scheduling information from a digital certificate 
verifier; 

assembling certificate revocation information on an ongoing basis; 

and 

capturing a state of the certificate revocation information as a 
certificate revocation list and transmitting the captured certificate 
revocation list to the digital certificate verifier on a schedule determined 
by the received update scheduling information. 

12. The method of claim 1 1 , wherein the captured certificate revocation list is 
transmitted using multicast broadcasts. 

13. The method of claim 12, wherein the captured certificate revocation list is 
a delta-certificate revocation list. 

14. The method of claim 1 1 , wherein said update scheduling information is 
received during a verifier subscription process. 
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15. The method of claim 14, wherein the method further comprises receiving 
new update scheduling information from the verifier, and wherein the 
revocation state information is transmitted according to a schedule that is 
based on the new update scheduling information. 



1 6. A method of verifying the validity of a certificate for a transaction, the 
method comprising: 

sending update scheduling information to a certificate authority; 

and 

receiving certificate revocation information from the certificate 
authority at scheduled times based on the update scheduling information 
at scheduled times. 



1 7. The method of claim 1 6, wherein the method further comprises: 
receiving a digital certificate from a subscriber; and 
determining whether the digital certificate was revoked based on 
the received certificate revocation information. 
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18. The method of claim 16, wherein said sending update scheduling 
information includes determining the update scheduling information 
based on a potential cost of reliance on a revoked certificate. 



19. The method of claim 15, wherein the method further comprises: 
receiving a digital certificate from a subscriber; 
determining whether the transaction is associated with a value 

that is above a pre-determined threshold level; and 

verifying the validity of the digital certificate after receiving a next 

update of certificate revocation information from the certificate authority. 



20. An article of manufacture comprising a computer-readable medium 
, having stored thereon instructions adapted to be executed by a 
processor, the instructions which, when executed, cause the processor 
to: 

receive first update scheduling information from a first party; and 
send digital certificate revocation state information to the first party 

according to a schedule that is based on the first update scheduling 

information. 



21 . The article of manufacture of claim 20, wherein the instructions stored on 
the computer-readable medium further include instructions adapted to be 
executed by a processor to: 
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receive second update scheduling information from a second 
party; and 

sending digital certificate revocation state information to the 
second party according to a schedule that is based on the second 
update scheduling information. 

22. The article of manufacture of claim 20, wherein the first intenyal is not 
equal to the second interval. 

23. The article of manufacture of claim 20, wherein the instructions stored on 
the computer-readable medium further include instructions adapted to 
be executed by a processor to receive new update scheduling 
information from the first party, and wherein the digital certificate 
revocation state information is sent to the first party according to a 
schedule that is based on the new update scheduling information. 

24. The article of manufacture of claim 20, wherein the digital certificate 
revocation state information sent includes delta-certificate revocation list 
information. 
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